44 matches found
EUVD-2008-7128
Malware in sbrugna...
EUVD-2010-1499
Malware in sbrugna...
WordPress Horoscope And Tarot plugin <= 1.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by SOPROBRO in WordPress Plugin Horoscope And Tarot versions = 1.3.0...
CVE-2024-11337
The Horoscope And Tarot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'divinehoroscope' shortcode in all versions up to, and including, 1.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
WordPress plugin Horoscope And Tarot 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
horoscope.mthai.com Cross Site Scripting vulnerability OBB-3856904
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
New Sneaky Xamalicious Android Malware Hits Over 327,000 Devices
A new Android backdoor has been discovered with potent capabilities to carry out a range of malicious actions on infected devices. Dubbed Xamalicious by the McAfee Mobile Research Team, the malware is so named for the fact that it's developed using an open-source mobile app framework called Xamar...
Android Apps in Google Play Harvest Facebook Credentials
A set of nine malicious Android apps that steal Facebook credentials were found on Google Play, which racked up a collective 5.9 million installations before Google removed them. According to Dr. Web’s malware analysts, the applications were fully functional, so that victims remained in the dark...
horoscopes.astro-seek.com XSS vulnerability
Open Bug Bounty ID: OBB-680795 Description| Value ---|--- Affected Website:| horoscopes.astro-seek.com Open Bug Bounty Program:| View Open Bug Bounty Program Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
astrologyanswers.com XSS vulnerability
Open Bug Bounty ID: OBB-609092 Description| Value ---|--- Affected Website:| astrologyanswers.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Joomla! Component Saxum Astro 4.0.14 - SQL Injection
Exploit Title: Joomla! Component Saxum Astro 4.0.14 - SQL Injection Dork: N/A Date: 16.02.2018 Vendor Homepage: http://www.saxum2003.hu/ Software Link: https://extensions.joomla.org/extensions/extension/living/astrology-a-horoscope/saxumastro/ Software Download:...
askejean.com XSS vulnerability
Vulnerable URL: http://www.askejean.com/dopeastrology/horoscope.php?yesterday=1"...
starstell.com XSS vulnerability
Vulnerable URL: http://www.starstell.com/horoscope.php?sign=1"...
Horoscope - your astro future - Dangerous filesystem permissions, Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Horoscope - your astro future published at the 'play' market has multiple vulnerabilities...
Mon Horoscope gratuit du jour - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Mon Horoscope gratuit du jour published at the 'play' market has multiple vulnerabilities...
interactive.0800-horoscope.com XSS vulnerability
Open Bug Bounty ID: OBB-185896 Description| Value ---|--- Affected Website:| interactive.0800-horoscope.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Daily Horoscope - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application Daily Horoscope published at the 'play' market has multiple vulnerabilities...
Free Daily Horoscope - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities
HackApp vulnerability scanner discovered that application Free Daily Horoscope published at the 'play' market has multiple vulnerabilities...
Daily Horoscope - Dangerous filesystem permissions, Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Daily Horoscope published at the 'play' market has multiple vulnerabilities...
My Horoscope - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities
HackApp vulnerability scanner discovered that application My Horoscope published at the 'play' market has multiple vulnerabilities...